Date Reported 20th January 2005
Apparent Sender WAMU
Return Address WAMU Support < support-auto@wamu.com >
Subject WAMU Alerting Service
Format HTML
Method Spoof email links to a spoof webpage where victim is prompted to enter their details believing the site is genuine. Details are then forwarded to a local script and captured.
Bogus Web Content? Yes
URL of web content http://verify.wamu-bank.com/index.php?kPy=5383942954223139277730468700537
1755607552775915293023482182729895365011298880419711050378&ssl=J
uZLIryXzLdnTvPjMmBtjTZrzLkgXbEHwEufXRdwF&eml=x@x&gK
mC=540520066568697586627&Byo=69970483269674984550237212179355
RISK LEVEL MEDIUM
WARNINGS 1. Email claims to be from WAMU asking you to confirm your account data by clicking on the link. You will be taken to a spoof login page where your details will be captured by the phishers.
2. WAMU never send users emails requesting details in this way.
3. URL looks real at a glance, but in fact nothing to do with WAMU.
4. URL not disguised - relies on similarities as disguise.
" Dear WAMU client. We ask you to confirm immediately of your parity the account to given e-mail."
If you have received this email, please remember that it is very common for these email scams to be redistributed at a later date with only slightly different content or the same but with the fake page(s) hosted by a different provider. Also, once you have received one of these hoaxes, it is also common place to receive at least another one and usually a day or two after the first, although not necessarily from the same apparent sender.
|
